%0 Journal Article %1 electronics13173357 %A Iffländer, Lukas %A Beierlieb, Lukas %A Kounev, Samuel %D 2024 %J Electronics %K descartes t_journalmagazine %N 17 %R 10.3390/electronics13173357 %T Attack-Aware Security Function Chaining %U https://www.mdpi.com/2079-9292/13/17/3357 %V 13 %X Cyberattacks have become more frequent and more violent in recent years. To date, defensive infrastructure has been relatively static, and security functions are usually placed in a common order that does not depend on the current situation. We propose the concept of attack-aware Security Service Function Chain reordering. The idea is to change the order of security functions depending on the malicious traffic observed. We present the basic idea, evaluate the impact of the function chain order, and introduce a framework for function chain reordering. Our evaluation shows that the order often has a significant impact on the performance of the security function chain and that there is no single order that outperforms all other orders in every situation. The proposed proof-of-concept framework successfully validates the feasibility of attack-aware security function chain reordering, and we propose additional extensions to eliminate the remaining deficiencies.

@article{electronics13173357, abstract = {Cyberattacks have become more frequent and more violent in recent years. To date, defensive infrastructure has been relatively static, and security functions are usually placed in a common order that does not depend on the current situation. We propose the concept of attack-aware Security Service Function Chain reordering. The idea is to change the order of security functions depending on the malicious traffic observed. We present the basic idea, evaluate the impact of the function chain order, and introduce a framework for function chain reordering. Our evaluation shows that the order often has a significant impact on the performance of the security function chain and that there is no single order that outperforms all other orders in every situation. The proposed proof-of-concept framework successfully validates the feasibility of attack-aware security function chain reordering, and we propose additional extensions to eliminate the remaining deficiencies.}, added-at = {2024-08-30T16:24:21.000+0200}, article-number = {3357}, author = {Iffländer, Lukas and Beierlieb, Lukas and Kounev, Samuel}, biburl = {https://www.bibsonomy.org/bibtex/29fa1810b1e9494c7ac43b3e9e60475ae/se-group}, doi = {10.3390/electronics13173357}, interhash = {6c6be29afd3f954c312c0e69d277681a}, intrahash = {9fa1810b1e9494c7ac43b3e9e60475ae}, issn = {2079-9292}, journal = {Electronics}, keywords = {descartes t_journalmagazine}, number = 17, timestamp = {2024-08-30T16:24:21.000+0200}, title = {Attack-Aware Security Function Chaining}, url = {https://www.mdpi.com/2079-9292/13/17/3357}, volume = 13, year = 2024 }